Lucene search

K
ThemeficTourfic

6 matches found

CVE
CVE
added 2024/03/19 2:15 p.m.58 views

CVE-2024-29135

Unrestricted Upload of File with Dangerous Type vulnerability in Tourfic.This issue affects Tourfic: from n/a through 2.11.15.

9.9CVSS9.6AI score0.00475EPSS
CVE
CVE
added 2024/03/19 2:15 p.m.54 views

CVE-2024-29137

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themefic Tourfic allows Reflected XSS.This issue affects Tourfic: from n/a through 2.11.7.

7.1CVSS7.1AI score0.00095EPSS
CVE
CVE
added 2024/03/19 2:15 p.m.53 views

CVE-2024-29134

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themefic Tourfic allows Stored XSS.This issue affects Tourfic: from n/a through 2.11.8.

6.5CVSS6.7AI score0.00084EPSS
CVE
CVE
added 2024/03/19 2:15 p.m.47 views

CVE-2024-29136

Deserialization of Untrusted Data vulnerability in Themefic Tourfic.This issue affects Tourfic: from n/a through 2.11.17.

8.8CVSS8.5AI score0.00391EPSS
CVE
CVE
added 2024/12/25 4:15 a.m.44 views

CVE-2024-12032

The Tourfic – Ultimate Hotel Booking, Travel Booking & Apartment Booking WordPress Plugin | WooCommerce Booking plugin for WordPress is vulnerable to SQL Injection via the 'enquiry_id' parameter of the 'tf_enquiry_reply_email_callback' function in all versions up to, and including, 2.15.3 due to in...

6.5CVSS6.5AI score0.00106EPSS
CVE
CVE
added 2025/01/24 6:15 p.m.40 views

CVE-2025-24650

Unrestricted Upload of File with Dangerous Type vulnerability in Themefic Tourfic allows Upload a Web Shell to a Web Server. This issue affects Tourfic: from n/a through 2.15.3.

9.1CVSS9.1AI score0.00095EPSS